XPost: comp.security.firewalls   
   From: stephen_hope@xx.ntlworld.com   
      
   "Tim W"  wrote in message   
   news:4d60d73b.0312091321.3af54f88@posting.google.com...   
   > Hello:   
   >   
   > I've run into problems with our new sonic wall pro 330. My main   
   > problem is we are running it for a web hosting company which has   
   > machines with multiple IP addresses. Each network card in each machine   
   > has more than 1 IP address bound to it, for specific functions. In   
   > some cases some web sites get their own IP addresses which should be   
   > fine except sonic wall detects it as some sort of attack or IP spoof.   
   > I have talked with Sonic Wall's support and received very few answers   
   > other than it wont work with the latest firmware, or even the 2   
   > previous. I was told to go back to firmware dated over a year old now,   
   > which seems to be working but this is not a proper solution. I would   
   > imagine that a sonic wall could handle passing traffic to any IP   
   > address bound to a network card behind it, but it appears as though it   
   > resolves it to a MAC address, and will only pass it to the primary IP   
   > address of the machine.   
      
   Hide the devices behind a real router - that way the Sonicwall wont be able   
   to tell that the different IP addresses have the same MAC. This also implies   
   you have to change the IP addressing to spearate Sonicwall on a different   
   subnet to the servers.   
      
   But - that means everything coming through the router (lots of different   
   IPs) will have the same MAC....   
      
   So - Sonicwall must be being a bit more subtle - perhaps they only perform   
   the check for devices in the local subnet.   
   >   
   > Any help is greatly appreciated.   
   >   
   > Thanks,   
   >   
   > Tim W   
   --   
   Regards   
      
   Stephen Hope - remove xx from email to reply   
      
   --- SoupGate-Win32 v1.05   
    * Origin: you cannot sedate... all the things you hate (1:229/2)